mirror of
https://github.com/oauth2-proxy/oauth2-proxy.git
synced 2024-11-30 09:16:52 +02:00
190 lines
4.7 KiB
Go
190 lines
4.7 KiB
Go
package main
|
|
|
|
import (
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"sync"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/oauth2-proxy/oauth2-proxy/pkg/apis/options"
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
const localhost = "127.0.0.1"
|
|
const host = "test-server"
|
|
|
|
func TestGCPHealthcheckLiveness(t *testing.T) {
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := gcpHealthcheck(http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/liveness_check", nil)
|
|
r.RemoteAddr = localhost
|
|
r.Host = host
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, 200, rw.Code)
|
|
assert.Equal(t, "OK", rw.Body.String())
|
|
}
|
|
|
|
func TestGCPHealthcheckReadiness(t *testing.T) {
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := gcpHealthcheck(http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/readiness_check", nil)
|
|
r.RemoteAddr = localhost
|
|
r.Host = host
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, 200, rw.Code)
|
|
assert.Equal(t, "OK", rw.Body.String())
|
|
}
|
|
|
|
func TestGCPHealthcheckNotHealthcheck(t *testing.T) {
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := gcpHealthcheck(http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/not_any_check", nil)
|
|
r.RemoteAddr = localhost
|
|
r.Host = host
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, "test", rw.Body.String())
|
|
}
|
|
|
|
func TestGCPHealthcheckIngress(t *testing.T) {
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := gcpHealthcheck(http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/", nil)
|
|
r.RemoteAddr = localhost
|
|
r.Host = host
|
|
r.Header.Set(userAgentHeader, googleHealthCheckUserAgent)
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, 200, rw.Code)
|
|
assert.Equal(t, "", rw.Body.String())
|
|
}
|
|
|
|
func TestGCPHealthcheckNotIngress(t *testing.T) {
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := gcpHealthcheck(http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/foo", nil)
|
|
r.RemoteAddr = localhost
|
|
r.Host = host
|
|
r.Header.Set(userAgentHeader, googleHealthCheckUserAgent)
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, "test", rw.Body.String())
|
|
}
|
|
|
|
func TestGCPHealthcheckNotIngressPut(t *testing.T) {
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := gcpHealthcheck(http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("PUT", "/", nil)
|
|
r.RemoteAddr = localhost
|
|
r.Host = host
|
|
r.Header.Set(userAgentHeader, googleHealthCheckUserAgent)
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, "test", rw.Body.String())
|
|
}
|
|
|
|
func TestRedirectToHTTPSTrue(t *testing.T) {
|
|
opts := options.NewOptions()
|
|
opts.ForceHTTPS = true
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := redirectToHTTPS(opts, http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/", nil)
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, http.StatusPermanentRedirect, rw.Code, "status code should be %d, got: %d", http.StatusPermanentRedirect, rw.Code)
|
|
}
|
|
|
|
func TestRedirectToHTTPSFalse(t *testing.T) {
|
|
opts := options.NewOptions()
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := redirectToHTTPS(opts, http.HandlerFunc(handler))
|
|
rw := httptest.NewRecorder()
|
|
r, _ := http.NewRequest("GET", "/", nil)
|
|
h.ServeHTTP(rw, r)
|
|
|
|
assert.Equal(t, http.StatusOK, rw.Code, "status code should be %d, got: %d", http.StatusOK, rw.Code)
|
|
}
|
|
|
|
func TestRedirectNotWhenHTTPS(t *testing.T) {
|
|
opts := options.NewOptions()
|
|
opts.ForceHTTPS = true
|
|
handler := func(w http.ResponseWriter, req *http.Request) {
|
|
w.Write([]byte("test"))
|
|
}
|
|
|
|
h := redirectToHTTPS(opts, http.HandlerFunc(handler))
|
|
s := httptest.NewTLSServer(h)
|
|
defer s.Close()
|
|
|
|
opts.HTTPSAddress = s.URL
|
|
client := s.Client()
|
|
res, err := client.Get(s.URL)
|
|
if err != nil {
|
|
t.Fatalf("request to test server failed with error: %v", err)
|
|
}
|
|
|
|
assert.Equal(t, http.StatusOK, res.StatusCode, "status code should be %d, got: %d", http.StatusOK, res.StatusCode)
|
|
}
|
|
|
|
func TestGracefulShutdown(t *testing.T) {
|
|
opts := options.NewOptions()
|
|
stop := make(chan struct{}, 1)
|
|
srv := Server{Handler: http.DefaultServeMux, Opts: opts, stop: stop}
|
|
var wg sync.WaitGroup
|
|
wg.Add(1)
|
|
go func() {
|
|
defer wg.Done()
|
|
srv.ServeHTTP()
|
|
}()
|
|
|
|
stop <- struct{}{} // emulate catching signals
|
|
|
|
// An idiomatic for sync.WaitGroup with timeout
|
|
c := make(chan struct{})
|
|
go func() {
|
|
defer close(c)
|
|
wg.Wait()
|
|
}()
|
|
select {
|
|
case <-c:
|
|
case <-time.After(1 * time.Second):
|
|
t.Fatal("Server should return gracefully but timeout has occurred")
|
|
}
|
|
|
|
assert.Len(t, stop, 0) // check if stop chan is empty
|
|
}
|